summaryrefslogtreecommitdiffstats
path: root/Bugzilla/Template.pm
AgeCommit message (Collapse)AuthorFilesLines
2014-08-13Bug 996893: Perl 5.18 and newer throw tons of warnings about deprecated modulesFrédéric Buclin1-0/+1
r=dkl a=sgreen
2014-08-10Bug 897915 - Field lists not sorted alphabeticallySimon Green1-0/+15
r=dkl, a=sgreen
2014-07-27Bug 726696 - All authenticated WebServices methods should require ↵Simon Green1-0/+6
username/pass, token or a valid API key for authentication r=dkl, a=sgreen
2014-07-03Bug 1028795: pre-load all related bugs during show_bug initialisationByron Jones1-5/+6
r=sgreen,a=sgreen
2014-07-02Bug 1020821 - Product drop down orders classifications alphabeticallySimon Green1-0/+6
r=gkl, a=glob
2014-05-30Bug 1013209: data/assets: empty generated css-fileByron Jones1-1/+1
r=dkl, a=glob
2014-05-28Bug 1016199: move skins/assets to data/assetsByron Jones1-3/+3
r=dkl, a=justdave
2014-05-14fix mod_perl breakage caused by bug 977969Byron Jones1-0/+1
2014-05-14Bug 977969: concatenate and slightly minify css filesByron Jones1-12/+76
r=gerv, a=glob
2014-04-18Bug 998323 - URLs pasted in comments are no longer displayedDavid Lawrence1-14/+11
r=LpSolit,a=justdave
2014-04-17Bug 968576: [SECURITY] Dangerous control characters allowed in Bugzilla textManish Goregaokar1-0/+12
r=glob a=justdave
2014-04-17Bug 713926: (CVE-2014-1517) [SECURITY] Login form lacks CSRF protectionFrédéric Buclin1-0/+5
r=dkl a=justdave
2014-03-05Bug 956190 (part 3): Remove IE-fixes.css (Internet Explorer 7 and older are ↵Frédéric Buclin1-6/+4
no longer supported) r/a=justdave
2014-03-04Bug 978619 - Typo in Bugzilla/Template.pmMatt Selsky1-1/+1
r=dkl,a=justdave
2013-09-26Bug 917669 - invalid or expired authentication tokens and cookies should ↵Dave Lawrence1-4/+1
throw errors, not be silently ignored r/a=glob
2013-08-15Bug 105865: Bugzilla should pay attention to linebreaks when linkifying bug ↵Frédéric Buclin1-13/+17
IDs in comments r=dkl a=sgreen
2013-07-25Remove debug codeFrédéric Buclin1-1/+0
https://bugzilla.mozilla.org/show_bug.cgi?id=895309
2013-07-24Bug 895309 - comments returned via the REST endpoint shouldn't be wrappedDave Lawrence1-1/+3
r/a=glob https://bugzilla.mozilla.org/show_bug.cgi?id=859309
2013-02-19Bug 842038: (CVE-2013-0785) [SECURITY] XSS in show_bug.cgi when using an ↵Frédéric Buclin1-5/+9
invalid page format r=glob a=LpSolit
2013-01-17Bug 830467: Don't call _wanted_languages() when only one is availableFrédéric Buclin1-8/+3
r=glob a=LpSolit
2013-01-14Bug 829939: Only build default_authorizer on requestFrédéric Buclin1-1/+1
r=glob a=LpSolit
2013-01-14Bug 829709: Do not load CSS files from all skins by defaultFrédéric Buclin1-36/+13
r=dkl a=LpSolit
2012-12-29Bug 804343: Implement autolinkification for a list of comment idsKoosha Khajeh Moogahi1-1/+15
r/a=LpSolit
2012-12-01Bug 787668: Use |use parent| instead of |use base|Matt Selsky1-1/+1
r/a=LpSolit
2012-11-30Bug 816747 - Add dummy POD for unPODded methods.Marc Schumann1-0/+26
r/a=LpSolit
2012-11-22Bug 811280: Adds a caching mechanism to Bugzilla::Object to avoid querying ↵Byron Jones1-3/+3
the database repeatedly for the same information r=dkl,a=LpSolit
2012-11-16Bug 797636: Improve performance for buglistsFrédéric Buclin1-3/+2
r=dkl a=LpSolit
2012-10-13Bug 213440: quoteUrls() should permit multiple bug numbers to be linkified ↵Koosha Khajeh Moogahi1-0/+17
in comments r/a=LpSolit
2012-10-04Bug 797883: Adds a Bugzilla->process_cacheByron Jones1-7/+6
r=LpSolit, a=LpSolit
2012-09-01Bug 787529: Use |use 5.10.1| everywhereFrédéric Buclin1-0/+1
r=wicked a=LpSolit
2012-08-08Bug 778631: use a persistent Template::Provider to avoid recompiling ↵Byron Jones1-0/+14
templates between page loads on mod_perl r=dkl, a=LpSolit
2012-08-07Backing out Bug 778631 due to breakageByron Jones1-10/+0
2012-08-07Bug 778631: use a persistent Template::Provider to avoid recompiling ↵Byron Jones1-0/+10
templates between page loads on mod_perl r=dkl, a=LpSolit
2012-07-26Bug 777398: (CVE-2012-1968) [SECURITY] HTML bugmail exposes information ↵Frédéric Buclin1-14/+18
about restricted bugs r=glob a=LpSolit
2012-05-17Bug 752751: Perl modules that start with a protocol (eg HTTP::Header) are ↵Simon Green1-1/+1
not escaped correctly in SAFE_URL_REGEXP r/a=LpSolit
2012-05-07Bug 616191: Implement UI to easily tag bugs from the bug report directly ↵Frédéric Buclin1-1/+3
(and get rid of the current form in the footer) r=timello a=LpSolit
2012-03-01Bug 731562: Cache the global/user.html.tmpl template for improved performanceFrédéric Buclin1-1/+9
r=dkl a=LpSolit
2012-02-29Bug 731175: Bugzilla::Field shouldn't assume that someone else already ↵Frédéric Buclin1-4/+4
loaded required modules r=glob a=LpSolit
2012-02-16Bug 727541 - Constants in Bugzilla::WebService::Constants should be ↵Dave Lawrence1-3/+16
available inside the templates similar to Bugzilla::Constants r/a=LpSolit
2012-01-11Bug 680131: Replace the MPL 1.1 license by the MPL 2.0 one in all files, and ↵Frédéric Buclin1-29/+5
add it to files which miss one r=kiko r=mkanat r=mrbball a=LpSolit
2011-10-23Bug 696256: global/variables.none.tmpl should be PRE_PROCESS'edFrédéric Buclin1-1/+1
r/a=mkanat
2011-08-04Bug 657158 - (CVE-2011-2381) [SECURITY] Request email headers for attachment ↵Reed Loden1-0/+3
containing newline are corrupt [r=LpSolit a=LpSolit]
2011-08-01Bug 634812: Having a very large number of custom fields can make displaying ↵Frédéric Buclin1-0/+5
show_bug.cgi slow r=glob a=LpSolit
2011-07-25Bug 652663 - When using bug_format_comment hook some replacements can happen ↵David Lawrence1-2/+4
more than once causing broken links r/a=LpSolit
2011-07-08Bug 670169 - Escape '>' in js filterReed Loden1-0/+1
[r=LpSolit a=LpSolit]
2011-05-24Bug 659185: html_quote() escapes @ causing mailto links to not be processedFrédéric Buclin1-1/+2
r/a=mkanat
2011-04-28Bug 423612 - Allow editing extern_id for users from the admin interfaceJochen Wiedmann1-0/+1
r=mkanat, a=mkanat
2011-04-21Bug 650593: Bugzilla crashes when the database is gone, even when ↵Frédéric Buclin1-3/+4
shutdownhtml is set r=justdave a=LpSolit
2011-01-24Bug 619588: (CVE-2010-4567) [SECURITY] Safety checks that disallow clicking ↵Frédéric Buclin1-6/+21
for javascript: or data: URLs in the URL field can be evaded with prefixed whitespace and Bug 628034: (CVE-2011-0048) [SECURITY] For not-logged-in users, the URL field doesn't safeguard against javascript: or data: URLs r=dkl a=LpSolit
2011-01-04Bug 595410: Make it faster to display a bug that has a lot of dependencies.Max Kanat-Alexander1-41/+12
r=LpSolit, a=LpSolit